Question : PIX 515E and ACS - limit active VPN session time?

I need to know if it is possible to limit the active session time for a software VPN client session to 1 hour using the PIX and/or ACS, and if so, how to do so.

Any information would be most helpful.

Thanks,
exx

Answer : PIX 515E and ACS - limit active VPN session time?

Don't know what version your're running;

PIX/ASA 7.x and later

Enter the vpn-idle-timeout command in group-policy configuration mode or in username configuration mode in order to configure the user timeout period:

hostname(config)#group-policy DfltGrpPolicy attributes
hostname(config-group-policy)#vpn-idle-timeout none

Configure a maximum amount of time for VPN connections with the vpn-session-timeout command in group-policy configuration mode or in username configuration mode:

hostname(config)#group-policy DfltGrpPolicy attributes
hostname(config-group-policy)#vpn-session-timeout none

So, the vpn-session-timeout command can be used to do that.

Cheers,
rsivanandan

Random Solutions

CDATA tags appearing incorrectly in XML output using FOR XML PATH

Problems using imap functions

Listen to calls on Asterisk

Mail stuck in Lotus oubox

Cheap backlinks? Best bang for the buck SEO site?

Video card reccommendations

nginx - possible to rewrite based on referring url?

this computer is in use and has been locked

i have xenapp do i need xendesktop

Do not ask me again!